Please help me to understand where I wrong on this basic configuration.

Hi there,

I’m very newbie, so pleae excuse me if I do basic errors.

For the moments I need to configure a simple home network but something went wrong.

I’ve an isp router and I want to connect to this an hAP ac to create a separate network.

Following many tutorials I’ve to the follow step:

ETH1 - DHCP Client (it’s my was and it take 192.168.1.70)

I’ve make Bridge with ETH2 to 5 + Wlan1 and 2

I’ve assigned to the bridge the follow IP 172.16.12.100

I’ve make a pool 172.16.12.30-172.16.12.50

I’ve make a dhcp server and I’ve assigned to this the pool with GW e DNS1 172.16.12.100 and DNS2 8.8.8.8

I’ve make a NAT rules srcnat 172.16.12.0/24 with masquerade action

IP - DNS is configured with Google dns

The two wifi are enabled with wpa2 encryption.

The route are auto configured so:

0.0.0.0/24 — 192.168.1.254
172.16.12.100 — bridge
192.168.1.0/24 — eth1

All the intranet work fine.
Wireless, dhcp, nas, printer, laptop and so on but I can’t go on internet.

The RB can navigate (ping and update work fine) but my intranet can’t.

I’ve try to modify some natural rules but without any result.

Pleae explain my where is my error.

Regards

A.A.


Sent from my MI 5s using Tapatalk

Try using the default masquerade rule. You shouldn’t need to edit it.

/ip firewall nat
add action=masquerade chain=srcnat comment=“defconf: masquerade”
out-interface=ether1

I have multiple subnets on my lan and they all can get to the internet with this single rule.

Thanks for your suggestions.
I’m sure that had already test this rules but in any case I’ve deleted all my old rules and input your rules.

I’ve tried tu input by command line and also by winbbox but nothing is changed.

Any other suggestions?

Sent from my MI 5s using Tapatalk

Found my mistake…

Sorry for this question, I’ve make a mistake wile insert the iPhone for the bridge.

Sent from my MI 5s using Tapatalk